Issues in class-foogallery-pro-attachment-taxonomies.php (master) - Issues in master - fooplugins/foogallery - Measure and Improve Code Quality continuously with Scrutinizer

Issues (1881)

Security Analysis not enabled

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

class-foogallery-pro-attachment-taxonomies.php (13 issues)

Labels

Severity

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
if ( ! class_exists( 'FooGallery_Pro_Attachment_Taxonomies' ) ) {

    define( 'FOOGALLERY_ATTACHMENT_TAXONOMY_TAG', 'foogallery_attachment_tag' );
    define( 'FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY', 'foogallery_attachment_category' );

    class FooGallery_Pro_Attachment_Taxonomies {
namespace YourVendor;

class YourClass { }

    	private $cached_terms = array();

        /**
         * Class Constructor
         */
        function __construct() {

			add_action( 'init', array( $this, 'init_all' ), 11 );
			add_action( 'foogallery_admin_settings_override', array( $this, 'add_admin_setting' ) );
        }

		/**
		 * Adds a setting to disable all FooGallery taxonomies
		 *
		 * @param $settings
		 *
		 * @return mixed
		 */
        function add_admin_setting($settings) {


			$settings['settings'][] = array(
				'id'      => 'disable_attachment_taxonomies',
				'title'   => __( 'Disable Attachment Taxonomies', 'foogallery' ),
				'desc'    => sprintf( __( 'Disables the %s attachment taxonomies (Media Tags and Media Categories).', 'foogallery' ), foogallery_plugin_name() ),
				'type'    => 'checkbox',
				'tab'     => 'advanced'
			);

        	return $settings;
		}

		/**
		 * Initialize all the hooks if the taxonomies are not disabled
		 */
        function init_all() {

			if ( foogallery_get_setting( 'disable_attachment_taxonomies' ) === 'on' ) {
				return;
			}

			$this->add_taxonomies();

			if ( is_admin() ) {
				add_action( 'admin_menu', array( $this, 'add_menu_items' ), 1 );
				add_filter( 'parent_file', array( $this, 'set_current_menu' ) );
				add_filter( 'manage_media_columns', array( $this, 'change_attachment_column_names' ) );
				add_filter( 'manage_edit-foogallery_attachment_tag_columns', array( $this, 'clean_column_names' ), 999 );
				add_filter( 'manage_edit-foogallery_attachment_category_columns', array( $this, 'clean_column_names' ), 999 );

				//make the attachment taxonomies awesome
				add_action( 'admin_head', array( $this, 'include_inline_taxonomy_data_script' ) );
				add_filter( 'attachment_fields_to_edit', array( $this, 'inject_code_into_field' ), 10, 2 );

				//ajax actions from the media modal
				add_action( 'wp_ajax_foogallery-taxonomies-add-term', array( $this, 'ajax_add_term' ) );
				add_action( 'wp_ajax_foogallery-taxonomies-save-terms', array( $this, 'ajax_save_terms' ) );
			}

			add_action( 'wp_enqueue_media', array( $this, 'enqueue_js' ) );
		}
        /**
         * Save terms for an attachment
         *
         * @since 1.4.19
         */
        public function ajax_save_terms()
        {
            $nonce = $_POST['nonce'];
            if (wp_verify_nonce($nonce, 'foogallery-attachment-taxonomy')) {

                $attachment_id = $_POST['attachment_id'];
                $terms = $_POST['terms'];
                $taxonomy = $_POST['taxonomy'];

                $result = wp_set_object_terms($attachment_id, array_map('trim', preg_split('/,+/', $terms)), $taxonomy, false);

				clean_post_cache($attachment_id);

				if ( !is_wp_error( $result ) ) {
					wp_send_json( $terms );
				}
            }
            die();
        }

        /**
         * Add new term via an ajax call from admin
         *
         * @since 1.4.19
         * @access public
         */
        public function ajax_add_term() {
            $nonce = $_POST['nonce'];
            if (wp_verify_nonce($nonce, 'foogallery-attachment-taxonomy')) {

                $new_term = wp_insert_term($_POST['term_label'], $_POST['taxonomy']);

                if (is_wp_error($new_term)) {
                    die();
                }

                $new_term_obj = null;

                if (isset($new_term['term_id'])) {
                    $new_term_obj = get_term($new_term['term_id']);
                }

                if (!is_wp_error($new_term_obj)) {
                    wp_send_json(array(
                        'new_term' => $new_term_obj,
                        'all_terms' => $this->build_terms_recursive($_POST['taxonomy'], array('hide_empty' => false))
                    ));
                }
            }

            die();
        }

		/**
		 * Enqueue admin script and styles
		 *
		 * @since 1.0.0
		 * @access public
		 * @static
		 */
		public function enqueue_js() {
			//enqueue selectize assets
			wp_enqueue_script( 'foogallery-selectize-core', FOOGALLERY_URL . 'lib/selectize/selectize.min.js', array('jquery'), FOOGALLERY_VERSION );
			wp_enqueue_script( 'foogallery-selectize', FOOGALLERY_URL . 'lib/selectize/foogallery.selectize.js', array('foogallery-selectize-core'), FOOGALLERY_VERSION );
			wp_enqueue_style(  'foogallery-selectize', FOOGALLERY_URL . 'lib/selectize/selectize.css', array(), FOOGALLERY_VERSION );

			//enqueue media attachment autosave script
            wp_enqueue_script( 'foogallery-attachment-autosave', FOOGALLERY_URL . 'js/admin-foogallery-attachment-autosave.js', array('media-views'), FOOGALLERY_VERSION );

			$this->include_inline_taxonomy_data_script();
		}

		/**
		 * Add fields to attachment
		 *
		 * @since 1.0.0
		 * @access public
		 * @static
		 * @param array $fields An array with all fields to edit
		 * @param object $post An object for the current post
		 * @return array $fields An array with all fields to edit
		 */
		public function inject_code_into_field($fields, $post) {
			if ( array_key_exists( FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, $fields ) ) {

				$value = trim( $fields[FOOGALLERY_ATTACHMENT_TAXONOMY_TAG]['value'] );

				$fields[FOOGALLERY_ATTACHMENT_TAXONOMY_TAG] = array(
					'show_in_edit' => false,
					'input' => 'html',
					'html' => $this->build_taxonomy_html( FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, $post, $value ),
					'label' => __( 'Media Tags', 'foogallery' )
				);
			}

			if ( array_key_exists( FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, $fields ) ) {

				$value = trim( $fields[FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY]['value'] );

				$fields[FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY] = array(
					'show_in_edit' => false,
					'input' => 'html',
					'html' => $this->build_taxonomy_html( FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, $post, $value ),
					'label' => __( 'Media Categories', 'foogallery' )
				);
			}

			return $fields;
		}

		/**
		 * Add custom js into admin head so that we can build up decent taxonomy selectize controls
		 *
		 * @since 1.0.0
		 * @access public
		 * @static
		 */
		public function include_inline_taxonomy_data_script() {
			$taxonomy_data[FOOGALLERY_ATTACHMENT_TAXONOMY_TAG] = array(
foreach ($collection as $item) {
    $myArray['foo'] = $item->getFoo();

    if ($item->hasBar()) {
        $myArray['bar'] = $item->getBar();
    }

    // do something with $myArray
}
				'slug' => FOOGALLERY_ATTACHMENT_TAXONOMY_TAG,
				'terms' => $this->build_terms_recursive(FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, array('hide_empty' => false)),
				'query_var' => true,
				'labels' => array(
					'placeholder' => __( 'Select tags, or add a new tag...', 'foogallery' ),
					'add' => __( 'Add new tag', 'foogallery' )
				),
			);

			$taxonomy_data[FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY] = array(
				'slug' => FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY,
				'terms' => $this->build_terms_recursive(FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, array('hide_empty' => false)),
				'query_var' => true,
				'labels' => array(
					'placeholder' => __( 'Select categories, or add a new category...', 'foogallery' ),
					'add' => __( 'Add new category', 'foogallery' )
				),
			);

			$taxonomy_data['nonce'] = wp_create_nonce( 'foogallery-attachment-taxonomy' );

			wp_add_inline_script( 'foogallery-selectize', 'window.FOOGALLERY_TAXONOMY_DATA = ' . json_encode($taxonomy_data) . ';' );
		}

        function change_attachment_column_names( $columns ) {


             if ( array_key_exists( 'taxonomy-foogallery_attachment_category', $columns ) ) {
                 $columns['taxonomy-foogallery_attachment_category'] = __('Categories', 'foogallery');
             }

             return $columns;
        }

        /**
         * Clean up the taxonomy columns for WP Seo plugin
         *
         * @param $columns
         * @return mixed
         */
        function clean_column_names( $columns ) {


             //cleanup wpseo columns!
             if ( array_key_exists( 'wpseo_score', $columns ) ) {
                 unset( $columns['wpseo_score'] );
             }
            if ( array_key_exists( 'wpseo_score_readability', $columns ) ) {
                unset( $columns['wpseo_score_readability'] );
            }
             return $columns;
        }

        /**
         * Add the menu items under the FooGallery main menu
         */
        function add_menu_items() {

            foogallery_add_submenu_page(
                __( 'Media Tags', 'foogallery' ),
                'manage_options',
                'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_TAG . '&post_type=' . FOOGALLERY_CPT_GALLERY,
                null
            );

            foogallery_add_submenu_page(
                __( 'Media Categories', 'foogallery' ),
                'manage_options',
                'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY . '&post_type=' . FOOGALLERY_CPT_GALLERY,
                null
            );
        }

        /**
         * Make sure the taxonomy menu items are highlighted
         * @param $parent_file
         * @return mixed
         */
        function set_current_menu( $parent_file ) {

            global $submenu_file, $current_screen;
function myFunction($a, $b) {
    // Do something
}

            if ( $current_screen->post_type == FOOGALLERY_CPT_GALLERY ) {

                if ( 'edit-foogallery_attachment_tag' === $current_screen->id ) {
                    $submenu_file = 'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_TAG . '&post_type=' . FOOGALLERY_CPT_GALLERY;
                }

                if ( 'edit-foogallery_attachment_category' === $current_screen->id ) {
                    $submenu_file = 'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY . '&post_type=' . FOOGALLERY_CPT_GALLERY;
                }
            }

            return $parent_file;
        }

        /**
         * Register the taxonomies for attachments
         */
        function add_taxonomies() {


            $tag_args = array(
                'labels'            => array(
                    'name'              => __( 'Media Tags', 'foogallery' ),
                    'singular_name'     => __( 'Tag', 'foogallery' ),
                    'search_items'      => __( 'Search Tags', 'foogallery' ),
                    'all_items'         => __( 'All Tags', 'foogallery' ),
                    'parent_item'       => __( 'Parent Tag', 'foogallery' ),
                    'parent_item_colon' => __( 'Parent Tag:', 'foogallery' ),
                    'edit_item'         => __( 'Edit Tag', 'foogallery' ),
                    'update_item'       => __( 'Update Tag', 'foogallery' ),
                    'add_new_item'      => __( 'Add New Tag', 'foogallery' ),
                    'new_item_name'     => __( 'New Tag Name', 'foogallery' ),
                    'menu_name'         => __( 'Media Tags', 'foogallery' )
                ),
                'hierarchical'      => false,
                'query_var'         => true,
                'rewrite'           => false,
                'show_admin_column' => false,
                'show_in_menu'      => false,
                'update_count_callback' => '_update_generic_term_count'
            );

            register_taxonomy( FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, 'attachment', $tag_args );

            $category_args = array(
                'labels'            => array(
                    'name'              => __( 'Media Categories', 'foogallery' ),
                    'singular_name'     => __( 'Category', 'foogallery' ),
                    'search_items'      => __( 'Search Categories', 'foogallery' ),
                    'all_items'         => __( 'All Categories', 'foogallery' ),
                    'parent_item'       => __( 'Parent Category', 'foogallery' ),
                    'parent_item_colon' => __( 'Parent Category:', 'foogallery' ),
                    'edit_item'         => __( 'Edit Category', 'foogallery' ),
                    'update_item'       => __( 'Update Category', 'foogallery' ),
                    'add_new_item'      => __( 'Add New Category', 'foogallery' ),
                    'new_item_name'     => __( 'New Category Name', 'foogallery' ),
                    'menu_name'         => __( 'Media Categories', 'foogallery' )
                ),
                'hierarchical'      => true,
                'query_var'         => true,
                'rewrite'           => false,
                'show_admin_column' => true,
                'show_in_menu'      => false,
                'update_count_callback' => '_update_generic_term_count'
            );

            register_taxonomy( FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, 'attachment', $category_args );
        }

		/**
		 * Build up a taxonomy field HTML
		 *
		 * @param $taxonomy
		 * @param $post
		 *
		 * @return array
		 */
        function build_taxonomy_html( $taxonomy, $post, $value ) {

			$html = '<input type="text" data-attachment_id="' . $post->ID . '" class="foogallery-attachment-ignore-change" id="attachments-' . $post->ID .'-' . $taxonomy . '" name="attachments-' . $post->ID .'-' . $taxonomy . '" value="' . $value . '" data-original-value="' . $value . '" />';
			$html .= '<script type="script/javascript">
				FOOGALLERY_SELECTIZE(\'#attachments-' . $post->ID .'-' . $taxonomy . '\', \'' . $taxonomy .'\');
				</script>';
			return $html;
		}

		/**
		 * Get terms sorted by hierarchy in a recursive way
		 *
		 * @param  string $taxonomy The taxonomy name
		 * @param  array $args The arguments which should be passed to the get_terms function
		 * @param  int $parent The terms parent id (for recursive usage)
		 * @param  int $level The current level (for recursive usage)
		 * @param  array $parents An array with all the parent terms (for recursive usage)
		 *
		 * @return array $terms_all An array with all the terms for this taxonomy
		 */
		function build_terms_recursive($taxonomy, $args = array(), $parent = 0, $level = 1, $parents = array()) {

			//check if the taxonomy terms have already been built up
			if ( 0 === $parent && array_key_exists( $taxonomy, $this->cached_terms ) ) {
				return $this->cached_terms[$taxonomy];
			}

			$terms_all = array();

			$args['parent'] = $args['child_of'] = $parent;

			$terms = get_terms($taxonomy, $args);

			foreach($terms as $term) {
				$term->level = $level;
				$term->parents = $parents;
				$term_parents = $parents;
				$term_parents[] = $term->name;
				$terms_all[] = $term;
				$terms_sub = $this->build_terms_recursive($taxonomy, $args, $term->term_id, $level + 1, $term_parents);

				if(!empty($terms_sub)) {
					$terms_all = array_merge($terms_all, $terms_sub);
				}
			}

			//cache what we have built up
			if ( 0 === $parent && !array_key_exists( $taxonomy, $this->cached_terms ) ) {
				$this->cached_terms[$taxonomy] = $terms_all;
			}

			return $terms_all;
		}
    }
}


GitHub Access Token became invalid

Issues (1881)

Security Analysis not enabled

class-foogallery-pro-attachment-taxonomies.php (13 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

1. Pass all data via parameters

2. Create a class that maintains your state

1			<?php
2			if ( ! class_exists( 'FooGallery_Pro_Attachment_Taxonomies' ) ) {
3
4			define( 'FOOGALLERY_ATTACHMENT_TAXONOMY_TAG', 'foogallery_attachment_tag' );
5			define( 'FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY', 'foogallery_attachment_category' );
6
7			class FooGallery_Pro_Attachment_Taxonomies {
			0 ignored issues – show Coding Style Compatibility introduced 2017-12-07 15:37 UTC by Report Bug Copy Issue Report Show Similar Issues like this PSR1 recommends that each class must be in a namespace of at least one level to avoid collisions. You can fix this by adding a namespace to your class: namespace YourVendor; class YourClass { } When choosing a vendor namespace, try to pick something that is not too generic to avoid conflicts with other libraries. Loading history...
8
9			private $cached_terms = array();
10
11			/**
12			* Class Constructor
13			*/
14			function __construct() {
			0 ignored issues – show Best Practice introduced 2017-12-07 15:41 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
15			add_action( 'init', array( $this, 'init_all' ), 11 );
16			add_action( 'foogallery_admin_settings_override', array( $this, 'add_admin_setting' ) );
17			}
18
19			/**
20			* Adds a setting to disable all FooGallery taxonomies
21			*
22			* @param $settings
23			*
24			* @return mixed
25			*/
26			function add_admin_setting($settings) {
			0 ignored issues – show Best Practice introduced 2018-03-20 19:00 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
27
28			$settings['settings'][] = array(
29			'id' => 'disable_attachment_taxonomies',
30			'title' => __( 'Disable Attachment Taxonomies', 'foogallery' ),
31			'desc' => sprintf( __( 'Disables the %s attachment taxonomies (Media Tags and Media Categories).', 'foogallery' ), foogallery_plugin_name() ),
32			'type' => 'checkbox',
33			'tab' => 'advanced'
34			);
35
36			return $settings;
37			}
38
39			/**
40			* Initialize all the hooks if the taxonomies are not disabled
41			*/
42			function init_all() {
			0 ignored issues – show Best Practice introduced 2018-03-19 20:05 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
43			if ( foogallery_get_setting( 'disable_attachment_taxonomies' ) === 'on' ) {
44			return;
45			}
46
47			$this->add_taxonomies();
48
49			if ( is_admin() ) {
50			add_action( 'admin_menu', array( $this, 'add_menu_items' ), 1 );
51			add_filter( 'parent_file', array( $this, 'set_current_menu' ) );
52			add_filter( 'manage_media_columns', array( $this, 'change_attachment_column_names' ) );
53			add_filter( 'manage_edit-foogallery_attachment_tag_columns', array( $this, 'clean_column_names' ), 999 );
54			add_filter( 'manage_edit-foogallery_attachment_category_columns', array( $this, 'clean_column_names' ), 999 );
55
56			//make the attachment taxonomies awesome
57			add_action( 'admin_head', array( $this, 'include_inline_taxonomy_data_script' ) );
58			add_filter( 'attachment_fields_to_edit', array( $this, 'inject_code_into_field' ), 10, 2 );
59
60			//ajax actions from the media modal
61			add_action( 'wp_ajax_foogallery-taxonomies-add-term', array( $this, 'ajax_add_term' ) );
62			add_action( 'wp_ajax_foogallery-taxonomies-save-terms', array( $this, 'ajax_save_terms' ) );
63			}
64
65			add_action( 'wp_enqueue_media', array( $this, 'enqueue_js' ) );
66			}
67			/**
68			* Save terms for an attachment
69			*
70			* @since 1.4.19
71			*/
72			public function ajax_save_terms()
73			{
74			$nonce = $_POST['nonce'];
75			if (wp_verify_nonce($nonce, 'foogallery-attachment-taxonomy')) {
76
77			$attachment_id = $_POST['attachment_id'];
78			$terms = $_POST['terms'];
79			$taxonomy = $_POST['taxonomy'];
80
81			$result = wp_set_object_terms($attachment_id, array_map('trim', preg_split('/,+/', $terms)), $taxonomy, false);
82
83			clean_post_cache($attachment_id);
84
85			if ( !is_wp_error( $result ) ) {
86			wp_send_json( $terms );
87			}
88			}
89			die();
90			}
91
92			/**
93			* Add new term via an ajax call from admin
94			*
95			* @since 1.4.19
96			* @access public
97			*/
98			public function ajax_add_term() {
99			$nonce = $_POST['nonce'];
100			if (wp_verify_nonce($nonce, 'foogallery-attachment-taxonomy')) {
101
102			$new_term = wp_insert_term($_POST['term_label'], $_POST['taxonomy']);
103
104			if (is_wp_error($new_term)) {
105			die();
106			}
107
108			$new_term_obj = null;
109
110			if (isset($new_term['term_id'])) {
111			$new_term_obj = get_term($new_term['term_id']);
112			}
113
114			if (!is_wp_error($new_term_obj)) {
115			wp_send_json(array(
116			'new_term' => $new_term_obj,
117			'all_terms' => $this->build_terms_recursive($_POST['taxonomy'], array('hide_empty' => false))
118			));
119			}
120			}
121
122			die();
123			}
124
125			/**
126			* Enqueue admin script and styles
127			*
128			* @since 1.0.0
129			* @access public
130			* @static
131			*/
132			public function enqueue_js() {
133			//enqueue selectize assets
134			wp_enqueue_script( 'foogallery-selectize-core', FOOGALLERY_URL . 'lib/selectize/selectize.min.js', array('jquery'), FOOGALLERY_VERSION );
135			wp_enqueue_script( 'foogallery-selectize', FOOGALLERY_URL . 'lib/selectize/foogallery.selectize.js', array('foogallery-selectize-core'), FOOGALLERY_VERSION );
136			wp_enqueue_style( 'foogallery-selectize', FOOGALLERY_URL . 'lib/selectize/selectize.css', array(), FOOGALLERY_VERSION );
137
138			//enqueue media attachment autosave script
139			wp_enqueue_script( 'foogallery-attachment-autosave', FOOGALLERY_URL . 'js/admin-foogallery-attachment-autosave.js', array('media-views'), FOOGALLERY_VERSION );
140
141			$this->include_inline_taxonomy_data_script();
142			}
143
144			/**
145			* Add fields to attachment
146			*
147			* @since 1.0.0
148			* @access public
149			* @static
150			* @param array $fields An array with all fields to edit
151			* @param object $post An object for the current post
152			* @return array $fields An array with all fields to edit
153			*/
154			public function inject_code_into_field($fields, $post) {
155			if ( array_key_exists( FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, $fields ) ) {
156
157			$value = trim( $fields[FOOGALLERY_ATTACHMENT_TAXONOMY_TAG]['value'] );
158
159			$fields[FOOGALLERY_ATTACHMENT_TAXONOMY_TAG] = array(
160			'show_in_edit' => false,
161			'input' => 'html',
162			'html' => $this->build_taxonomy_html( FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, $post, $value ),
163			'label' => __( 'Media Tags', 'foogallery' )
164			);
165			}
166
167			if ( array_key_exists( FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, $fields ) ) {
168
169			$value = trim( $fields[FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY]['value'] );
170
171			$fields[FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY] = array(
172			'show_in_edit' => false,
173			'input' => 'html',
174			'html' => $this->build_taxonomy_html( FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, $post, $value ),
175			'label' => __( 'Media Categories', 'foogallery' )
176			);
177			}
178
179			return $fields;
180			}
181
182			/**
183			* Add custom js into admin head so that we can build up decent taxonomy selectize controls
184			*
185			* @since 1.0.0
186			* @access public
187			* @static
188			*/
189			public function include_inline_taxonomy_data_script() {
190			$taxonomy_data[FOOGALLERY_ATTACHMENT_TAXONOMY_TAG] = array(
			0 ignored issues – show Coding Style Comprehensibility introduced 2018-02-26 18:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$taxonomy_data` was never initialized. Although not strictly required by PHP, it is generally a good practice to add `$taxonomy_data = array();` before regardless. Adding an explicit array definition is generally preferable to implicit array definition as it guarantees a stable state of the code. Let’s take a look at an example: foreach ($collection as $item) { $myArray['foo'] = $item->getFoo(); if ($item->hasBar()) { $myArray['bar'] = $item->getBar(); } // do something with $myArray } As you can see in this example, the array `$myArray` is initialized the first time when the foreach loop is entered. You can also see that the value of the `bar` key is only written conditionally; thus, its value might result from a previous iteration. This might or might not be intended. To make your intention clear, your code more readible and to avoid accidental bugs, we recommend to add an explicit initialization `$myArray = array()` either outside or inside the foreach loop. Loading history...
191			'slug' => FOOGALLERY_ATTACHMENT_TAXONOMY_TAG,
192			'terms' => $this->build_terms_recursive(FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, array('hide_empty' => false)),
193			'query_var' => true,
194			'labels' => array(
195			'placeholder' => __( 'Select tags, or add a new tag...', 'foogallery' ),
196			'add' => __( 'Add new tag', 'foogallery' )
197			),
198			);
199
200			$taxonomy_data[FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY] = array(
201			'slug' => FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY,
202			'terms' => $this->build_terms_recursive(FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, array('hide_empty' => false)),
203			'query_var' => true,
204			'labels' => array(
205			'placeholder' => __( 'Select categories, or add a new category...', 'foogallery' ),
206			'add' => __( 'Add new category', 'foogallery' )
207			),
208			);
209
210			$taxonomy_data['nonce'] = wp_create_nonce( 'foogallery-attachment-taxonomy' );
211
212			wp_add_inline_script( 'foogallery-selectize', 'window.FOOGALLERY_TAXONOMY_DATA = ' . json_encode($taxonomy_data) . ';' );
213			}
214
215			function change_attachment_column_names( $columns ) {
			0 ignored issues – show Best Practice introduced 2018-01-07 08:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
216
217			if ( array_key_exists( 'taxonomy-foogallery_attachment_category', $columns ) ) {
218			$columns['taxonomy-foogallery_attachment_category'] = __('Categories', 'foogallery');
219			}
220
221			return $columns;
222			}
223
224			/**
225			* Clean up the taxonomy columns for WP Seo plugin
226			*
227			* @param $columns
228			* @return mixed
229			*/
230			function clean_column_names( $columns ) {
			0 ignored issues – show Best Practice introduced 2018-01-07 08:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
231
232			//cleanup wpseo columns!
233			if ( array_key_exists( 'wpseo_score', $columns ) ) {
234			unset( $columns['wpseo_score'] );
235			}
236			if ( array_key_exists( 'wpseo_score_readability', $columns ) ) {
237			unset( $columns['wpseo_score_readability'] );
238			}
239			return $columns;
240			}
241
242			/**
243			* Add the menu items under the FooGallery main menu
244			*/
245			function add_menu_items() {
			0 ignored issues – show Best Practice introduced 2018-01-07 08:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
246			foogallery_add_submenu_page(
247			__( 'Media Tags', 'foogallery' ),
248			'manage_options',
249			'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_TAG . '&post_type=' . FOOGALLERY_CPT_GALLERY,
250			null
251			);
252
253			foogallery_add_submenu_page(
254			__( 'Media Categories', 'foogallery' ),
255			'manage_options',
256			'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY . '&post_type=' . FOOGALLERY_CPT_GALLERY,
257			null
258			);
259			}
260
261			/**
262			* Make sure the taxonomy menu items are highlighted
263			* @param $parent_file
264			* @return mixed
265			*/
266			function set_current_menu( $parent_file ) {
			0 ignored issues – show Best Practice introduced 2018-01-07 08:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
267			global $submenu_file, $current_screen;
			0 ignored issues – show Compatibility Best Practice introduced 2018-02-26 18:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this Use of `global` functionality is not recommended; it makes your code harder to test, and less reusable. Instead of relying on `global` state, we recommend one of these alternatives: 1. Pass all data via parameters function myFunction($a, $b) { // Do something } 2. Create a class that maintains your state class MyClass { private $a; private $b; public function __construct($a, $b) { $this->a = $a; $this->b = $b; } public function myFunction() { // Do something } } Loading history...
268
269			if ( $current_screen->post_type == FOOGALLERY_CPT_GALLERY ) {
270
271			if ( 'edit-foogallery_attachment_tag' === $current_screen->id ) {
272			$submenu_file = 'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_TAG . '&post_type=' . FOOGALLERY_CPT_GALLERY;
273			}
274
275			if ( 'edit-foogallery_attachment_category' === $current_screen->id ) {
276			$submenu_file = 'edit-tags.php?taxonomy=' . FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY . '&post_type=' . FOOGALLERY_CPT_GALLERY;
277			}
278			}
279
280			return $parent_file;
281			}
282
283			/**
284			* Register the taxonomies for attachments
285			*/
286			function add_taxonomies() {
			0 ignored issues – show Best Practice introduced 2018-01-07 08:06 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
287
288			$tag_args = array(
289			'labels' => array(
290			'name' => __( 'Media Tags', 'foogallery' ),
291			'singular_name' => __( 'Tag', 'foogallery' ),
292			'search_items' => __( 'Search Tags', 'foogallery' ),
293			'all_items' => __( 'All Tags', 'foogallery' ),
294			'parent_item' => __( 'Parent Tag', 'foogallery' ),
295			'parent_item_colon' => __( 'Parent Tag:', 'foogallery' ),
296			'edit_item' => __( 'Edit Tag', 'foogallery' ),
297			'update_item' => __( 'Update Tag', 'foogallery' ),
298			'add_new_item' => __( 'Add New Tag', 'foogallery' ),
299			'new_item_name' => __( 'New Tag Name', 'foogallery' ),
300			'menu_name' => __( 'Media Tags', 'foogallery' )
301			),
302			'hierarchical' => false,
303			'query_var' => true,
304			'rewrite' => false,
305			'show_admin_column' => false,
306			'show_in_menu' => false,
307			'update_count_callback' => '_update_generic_term_count'
308			);
309
310			register_taxonomy( FOOGALLERY_ATTACHMENT_TAXONOMY_TAG, 'attachment', $tag_args );
311
312			$category_args = array(
313			'labels' => array(
314			'name' => __( 'Media Categories', 'foogallery' ),
315			'singular_name' => __( 'Category', 'foogallery' ),
316			'search_items' => __( 'Search Categories', 'foogallery' ),
317			'all_items' => __( 'All Categories', 'foogallery' ),
318			'parent_item' => __( 'Parent Category', 'foogallery' ),
319			'parent_item_colon' => __( 'Parent Category:', 'foogallery' ),
320			'edit_item' => __( 'Edit Category', 'foogallery' ),
321			'update_item' => __( 'Update Category', 'foogallery' ),
322			'add_new_item' => __( 'Add New Category', 'foogallery' ),
323			'new_item_name' => __( 'New Category Name', 'foogallery' ),
324			'menu_name' => __( 'Media Categories', 'foogallery' )
325			),
326			'hierarchical' => true,
327			'query_var' => true,
328			'rewrite' => false,
329			'show_admin_column' => true,
330			'show_in_menu' => false,
331			'update_count_callback' => '_update_generic_term_count'
332			);
333
334			register_taxonomy( FOOGALLERY_ATTACHMENT_TAXONOMY_CATEGORY, 'attachment', $category_args );
335			}
336
337			/**
338			* Build up a taxonomy field HTML
339			*
340			* @param $taxonomy
341			* @param $post
342			*
343			* @return array
344			*/
345			function build_taxonomy_html( $taxonomy, $post, $value ) {
			0 ignored issues – show Best Practice introduced 2018-01-23 04:16 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
346			$html = '<input type="text" data-attachment_id="' . $post->ID . '" class="foogallery-attachment-ignore-change" id="attachments-' . $post->ID .'-' . $taxonomy . '" name="attachments-' . $post->ID .'-' . $taxonomy . '" value="' . $value . '" data-original-value="' . $value . '" />';
347			$html .= '<script type="script/javascript">
348			FOOGALLERY_SELECTIZE(\'#attachments-' . $post->ID .'-' . $taxonomy . '\', \'' . $taxonomy .'\');
349			</script>';
350			return $html;
351			}
352
353			/**
354			* Get terms sorted by hierarchy in a recursive way
355			*
356			* @param string $taxonomy The taxonomy name
357			* @param array $args The arguments which should be passed to the get_terms function
358			* @param int $parent The terms parent id (for recursive usage)
359			* @param int $level The current level (for recursive usage)
360			* @param array $parents An array with all the parent terms (for recursive usage)
361			*
362			* @return array $terms_all An array with all the terms for this taxonomy
363			*/
364			function build_terms_recursive($taxonomy, $args = array(), $parent = 0, $level = 1, $parents = array()) {
			0 ignored issues – show Best Practice introduced 2018-01-23 04:16 UTC by Report Bug Copy Issue Report Show Similar Issues like this It is generally recommended to explicitly declare the visibility for methods. Adding explicit visibility (`private`, `protected`, or `public`) is generally recommend to communicate to other developers how, and from where this method is intended to be used. Loading history...
365			//check if the taxonomy terms have already been built up
366			if ( 0 === $parent && array_key_exists( $taxonomy, $this->cached_terms ) ) {
367			return $this->cached_terms[$taxonomy];
368			}
369
370			$terms_all = array();
371
372			$args['parent'] = $args['child_of'] = $parent;
373
374			$terms = get_terms($taxonomy, $args);
375
376			foreach($terms as $term) {
377			$term->level = $level;
378			$term->parents = $parents;
379			$term_parents = $parents;
380			$term_parents[] = $term->name;
381			$terms_all[] = $term;
382			$terms_sub = $this->build_terms_recursive($taxonomy, $args, $term->term_id, $level + 1, $term_parents);
383
384			if(!empty($terms_sub)) {
385			$terms_all = array_merge($terms_all, $terms_sub);
386			}
387			}
388
389			//cache what we have built up
390			if ( 0 === $parent && !array_key_exists( $taxonomy, $this->cached_terms ) ) {
391			$this->cached_terms[$taxonomy] = $terms_all;
392			}
393
394			return $terms_all;
395			}
396			}
397			}
398

fooplugins / foogallery

GitHub Access Token became invalid

Issues (1881)

Security Analysis not enabled

class-foogallery-pro-attachment-taxonomies.php (13 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

1. Pass all data via parameters

2. Create a class that maintains your state

Duplication Side-by-Side

Filter issues like